chore(deps): update quay.io/thegeeklab/wp-docker-buildx docker tag to v6 (#157 )

Reviewed-on: #157 Co-authored-by: Renovator Bot <renovator@rknet.org> Co-committed-by: Renovator Bot <renovator@rknet.org>
ci: add read-only pull secret to security build
2024-11-16 15:06:18 +00:00 · 2024-11-14 21:09:55 +01:00 · 2024-11-13 00:04:36 +00:00
2 changed files with 6 additions and 4 deletions
--- a/.woodpecker/build-container.yml
+++ b/.woodpecker/build-container.yml
@ -7,11 +7,13 @@ when:

 steps:
  - name: security-build
-    image: quay.io/thegeeklab/wp-docker-buildx:5
+    image: quay.io/thegeeklab/wp-docker-buildx:6
    settings:
      containerfile: Containerfile.multiarch
      output: type=oci,dest=oci/${CI_REPO_NAME},tar=false
      repo: thegeeklab/${CI_REPO_NAME}
+      registry_config:
+        from_secret: DOCKER_REGISTRY_CONFIG_PULL

  - name: security-scan
    image: docker.io/aquasec/trivy
@ -28,7 +30,7 @@ steps:
      TRIVY_DB_REPOSITORY: docker.io/aquasec/trivy-db:2

  - name: publish-dockerhub
-    image: quay.io/thegeeklab/wp-docker-buildx:5
+    image: quay.io/thegeeklab/wp-docker-buildx:6
    depends_on: security-scan
    settings:
      auto_tag: true
@ -49,7 +51,7 @@ steps:
          - ${CI_REPO_DEFAULT_BRANCH}

  - name: publish-quay
-    image: quay.io/thegeeklab/wp-docker-buildx:5
+    image: quay.io/thegeeklab/wp-docker-buildx:6
    depends_on: security-scan
    settings:
      auto_tag: true
--- a/Containerfile.multiarch
+++ b/Containerfile.multiarch
@ -1,4 +1,4 @@
-FROM docker.io/alpine:3.20@sha256:beefdbd8a1da6d2915566fde36db9db0b524eb737fc57cd1367effd16dc0d06d
+FROM docker.io/alpine:3.20@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a

 LABEL maintainer="Robert Kaussow <mail@thegeeklab.de>"
 LABEL org.opencontainers.image.authors="Robert Kaussow <mail@thegeeklab.de>"
Author	SHA1	Message	Date
Renovator Bot	8030595f54	chore(deps): update quay.io/thegeeklab/wp-docker-buildx docker tag to v6 (#157 ) All checks were successful ci/woodpecker/push/build-package Pipeline was successful Details ci/woodpecker/push/build-container Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/push/notify Pipeline was successful Details Reviewed-on: #157 Co-authored-by: Renovator Bot <renovator@rknet.org> Co-committed-by: Renovator Bot <renovator@rknet.org>	2024-11-16 15:06:18 +00:00
Robert Kaussow	658fc01de5	ci: add read-only pull secret to security build All checks were successful ci/woodpecker/push/build-package Pipeline was successful Details ci/woodpecker/push/build-container Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/push/notify Pipeline was successful Details	2024-11-14 21:09:55 +01:00
Renovator Bot	50e377098a	chore(docker): update docker.io/alpine:3.20 docker digest to 1e42bbe All checks were successful ci/woodpecker/pr/build-package Pipeline was successful Details ci/woodpecker/pr/build-container Pipeline was successful Details ci/woodpecker/pr/docs Pipeline was successful Details ci/woodpecker/push/build-package Pipeline was successful Details ci/woodpecker/push/build-container Pipeline was successful Details ci/woodpecker/push/docs Pipeline was successful Details ci/woodpecker/push/notify Pipeline was successful Details	2024-11-13 00:04:36 +00:00